ПРОЕКТЫ 

  АРХИВ 

Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 

  СТАТЬИ 

  ПЕРСОНАЛЬНОЕ 

  ПРОГРАММЫ 

ПИШИТЕ
ПИСЬМА














     АРХИВ :: Security-alerts
Security-Alerts mailing list archive (security-alerts@yandex-team.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[security-alerts] FW: [Full-disclosure] Word flaw CVE-2007-0870 confirmed as codeexecution type issue

> -----Original Message-----
> From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx 
> [mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf 
> Of Juha-Matti Laurio
> Sent: Friday, February 16, 2007 1:00 AM
> To: full-disclosure@xxxxxxxxxxxxxxxxx
> Subject: [Full-disclosure] Word flaw CVE-2007-0870 confirmed 
> as codeexecution type issue
> 
> Microsoft Word 0-day vulnerability affecting versions XP (aka 
> 2002) and 2000 has been confirmed as code execution type 
> vulnerability.
> This vulnerability was reported as DoS type issue some days 
> ago. Security vendors and Microsoft have confirmed the code 
> execution with detailed research.
> 
> An official Microsoft Security Advisory #933052 has been released at
> http://www.microsoft.com/technet/security/advisory/933052.mspx
> on Wednesday.
> The related CVE name is
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0870
> 
> This vulnerability was used in typical targeted attacks.
> 
> - Juha-Matti
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

 



Copyright © Lexa Software, 1996-2009.